A Survey on Intrusion Detection Systems for Fog and Cloud Computing

Abstract

The rapid advancement of internet technologies has dramatically increased the number of connected devices. This has created a huge attack surface that requires the deployment of effective and practical countermeasures to protect network infrastructures from the harm that cyber-attacks can cause. Hence, there is an absolute need to differentiate boundaries in personal information and cloud and fog computing globally and the adoption of specific information security policies and regulations. The goal of the security policy and framework for cloud and fog computing is to protect the end-users and their information, reduce task-based operations, aid in compliance, and create standards for expected user actions, all of which are based on the use of established rules for cloud computing. Moreover, intrusion detection systems are widely adopted solutions to monitor and analyze network traffic and detect anomalies that can help identify ongoing adversarial activities, trigger alerts, and automatically block traffic from hostile sources. This survey paper analyzes factors, including the application of technologies and techniques, which can enable the deployment of security policy on fog and cloud computing successfully. The paper focuses on a Software-as-a-Service (SaaS) and intrusion detection, which provides an effective and resilient system structure for users and organizations. Our survey aims to provide a framework for a cloud and fog computing security policy, while addressing the required security tools, policies, and services, particularly for cloud and fog environments for organizational adoption. While developing the essential linkage between requirements, legal aspects, analyzing techniques and systems to reduce intrusion detection, we recommend the strategies for cloud and fog computing security policies. The paper develops structured guidelines for ways in which organizations can adopt and audit the security of their systems as security is an essential component of their systems and presents an agile current state-of-the-art review of intrusion detection systems and their principles. Functionalities and techniques for developing these defense mechanisms are considered, along with concrete products utilized in operational systems. Finally, we discuss evaluation criteria and open-ended challenges in this area.

Publication DOI: https://doi.org/10.3390/fi14030089
Divisions: College of Business and Social Sciences > Aston Business School
College of Business and Social Sciences > Aston Business School > Operations & Information Management
Funding Information: Funding: This research was funded by VC Research grant number VCR 0000162.
Additional Information: © 2022 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https:// creativecommons.org/licenses/by/ 4.0/). Funding Information: Funding: This research was funded by VC Research grant number VCR 0000162.
Uncontrolled Keywords: cloud computing,defense techniques,intrusion detection and prevention,recommendations for cloud computing and security,recommendations for network security,security,Computer Networks and Communications
Publication ISSN: 1999-5903
Last Modified: 19 Nov 2024 18:48
Date Deposited: 26 May 2022 09:22
Full Text Link:
Related URLs: http://www.scop ... tnerID=8YFLogxK (Scopus URL)
https://www.mdp ... 99-5903/14/3/89 (Publisher URL)
PURE Output Type: Article
Published Date: 2022-03-13
Accepted Date: 2022-03-11
Authors: Chang, Victor (ORCID Profile 0000-0002-8012-5852)
Golightly, Lewis
Modesti, Paolo
Xu, Qianwen Ariel
Doan, Le Minh Thao
Hall, Karl
Boddu, Sreeja
Kobusińska, Anna

Download

[img]

Version: Published Version

License: Creative Commons Attribution

| Preview

Export / Share Citation


Statistics

Additional statistics for this record